Kaspersky’s Stolen Amazon SES Token Used For Phishing

November 2, 2021

Kaspersky recently confirmed that a legitimate Amazon Simple Email Service (SES) token, issued to a third-party vendor, was recently used by threat actors to target Office 365 users in a phishing attack.

The attackers used two phishing kits, including “Iamtheboss” and “MIRCBOOT.”

Although the attackers used an official Kaspersky email and sent the emails from the Amazon Web Services infrastructure, which provided them with the support they needed to reach their target mailboxes without being flagged, Kaspersky noted that “No server compromise, unauthorized database access or any other malicious activity was found at 2050.earth and associated services,”

The SES token was revoked immediately after the phishing attacks were discovered.

Going forward, Kaspersky urged users and phishing attackers to remain vigilant and not disclose their information or login credentials even if the message comes from a familiar or well-known brand.

For more information, read the original story in Bleeping Computer.

Top Stories

Related Articles

June 9, 2026 Hackers exploited Meta’s AI-powered support chatbot to gain control of Instagram accounts, including several high-profile profiles. Meta more...

June 5, 2026 Security researchers have disclosed a new denial-of-service attack called HTTP/2 Bomb that can overwhelm major web servers more...

May 20, 2026 The Cybersecurity and Infrastructure Security Agency, the arm of the U.S. government tasked with protecting critical infrastructure more...

May 11, 2026 Instructure has restored access to its Canvas learning platform after a cyberattack disrupted service for universities and more...

Picture of TND News Desk

TND News Desk

Staff writer for Tech Newsday.
Picture of TND News Desk

TND News Desk

Staff writer for Tech Newsday.

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn